Security Awareness Blog

The "WHY" in Effective Awareness Programs

Last week we kicked of a blog series on the 4 W's in building an effective awareness program. In the first post we explained that to effectively manage human risk organizations need to answer four key questions; WHY, WHO, WHAT and HOW. Today we focus on the first of those four questions, the WHY part. … Continue reading The "WHY" in Effective Awareness Programs

OUCH! is Out - Password Managers

We are excited to announce OUCH! is out. Every month we publish the free OUCH! security awareness newsletter. Each newsletter goes through an intense review process by three different bodies of experts and is then translated into over 20 languages by a team of volunteers. For October, which is also Security Awareness month, we … Continue reading OUCH! is Out - Password Managers

The 4 W's to Awareness Success

At SANS Securing The Human we have over 1,000 active customers around the world. With so many customers we have gained a wealth of knowledge on what does and what does not work in building awareness programs. In this series of posts titled "The 4 W's of Success" we will share with you the lessons … Continue reading The 4 W's to Awareness Success

Awareness Training for Developers on Secure DevOps

Editor's Note: Today's post is from Eric Johnson. Eric is a Senior Security Consultant at Cypress Data Defense, and the Application Security Curriculum Product Manager at SANS. In this post, Eric introduces Secure DevOps and some key DevOps concepts. This month, our STH.Developer Software Development Lifecycle (SDLC) training module was selected for the video of … Continue reading Awareness Training for Developers on Secure DevOps

Security Awareness Summit Roundup

The 2nd annual US Security Awareness Summit was held in Philadelphia, 10 August with almost 150 people attending. It was an amazing mix of security awareness officers from different industries, organizations and even countries, with people coming from as far as Brunei to attend. Here are some key take aways from the event. We had … Continue reading Security Awareness Summit Roundup